{"report_id":"43b1a87d-7daf-4c45-8d95-939d205a026e","version":6,"status":"done","tags":["opendir"],"date":"2024-08-10T20:44:56Z","url":{"schema":"http","addr":"hris.saranagroups.com/img/logo","fqdn":"hris.saranagroups.com","domain":"saranagroups.com","tld":"com"},"ip":{"addr":"103.167.112.196","port":0,"asn":139457,"as":"PT Semut Data Indonesia","country":"Indonesia","country_code":"ID"},"final":{"url":{"schema":"https","addr":"hris.saranagroups.com/img/logo/","fqdn":"hris.saranagroups.com","domain":"saranagroups.com","tld":"com"},"title":"Index of /img/logo"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-10-25T02:53:17Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"r10.o.lencr.org","ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"domain_registered":"","domain_rank":0,"first_seen":"","last_seen":"","alert_count":0,"request_count":6,"received_data":5326,"sent_data":1962,"comment":"","tags":null,"fingerprints":null},{"fqdn":"hris.saranagroups.com","ip":{"addr":"103.167.112.196","port":443,"asn":139457,"as":"PT Semut Data Indonesia","country":"Indonesia","country_code":"ID"},"domain_registered":"","domain_rank":0,"first_seen":"","last_seen":"","alert_count":1,"request_count":3,"received_data":3557,"sent_data":1413,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"mnemonic_dns","type":"domain","description":"mnemonic secure dns","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":null},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Audit - Open directory","verdict":"none","severity":"audit","comment":"","tags":["opendir"],"meta":null}]},"javascript":{"script":null,"eval":null,"write":null},"http":[{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-08-10T20:44:31.322488003Z","timestamp":1723322671322,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"B41A248824843236C8691934A5DFD24DAA01F05CDC8CFF81AFDB9588DEE24946\"\r\nLast-Modified: Thu, 08 Aug 2024 18:28:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=4837\r\nExpires: Sat, 10 Aug 2024 22:05:08 GMT\r\nDate: Sat, 10 Aug 2024 20:44:31 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"19cd88f88651f2e9f42740350df4b4d1","sha1":"c6c7026e15281db4f24b3bc4ee2cfc2ecc26362c","sha256":"b41a248824843236c8691934a5dfd24daa01f05cdc8cff81afdb9588dee24946","sha512":"40d34a1f0dc569b6e3db54b66252bc8f2857dc761f9d2a5f9ad822b39d1fb1b9508818380f8ca501baeb90706fc1895426c2fc9caeef98b41dee41efdcb77c59","ssdeep":"","tlshash":"daf075b2007677c03a7218212691da831d1ced20268457907e8ac3c2b1b4bf40e4004a","first_seen":"2024-08-09T01:33:37Z","last_seen":"2024-08-19T14:08:03.891329Z","times_seen":31992,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-08-10T20:44:31.372166075Z","timestamp":1723322671372,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"F53B9B17675CE2F387B3FCFF02C39ECC355E1FD81756731257C59EA22115C519\"\r\nLast-Modified: Thu, 08 Aug 2024 18:58:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=16950\r\nExpires: Sun, 11 Aug 2024 01:27:01 GMT\r\nDate: Sat, 10 Aug 2024 20:44:31 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"b278ebaf27c527785e85180da86b54f9","sha1":"ee87bf3d735648b0734efe705977f9b86155fcbd","sha256":"f53b9b17675ce2f387b3fcff02c39ecc355e1fd81756731257c59ea22115c519","sha512":"cb3aaf33a3d79063fb2a85a6e422c3d0096fc55946a45e0a6cd52439a18ab5bc4107c2968af39845b807e4b95c75bd035fc6d40d9e798b5739da16f03bbfed38","ssdeep":"","tlshash":"61f0054a17556ed1f374e30016f1f15f1d11da7c391a99d13cc181f17882f89890860c","first_seen":"2024-08-08T23:58:07Z","last_seen":"2024-08-19T14:08:28.268493Z","times_seen":30651,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-08-10T20:44:31.729695708Z","timestamp":1723322671729,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"F6E3FF7FE8C3E33CC9A5F443E3772734A7026EC834F48A39703F23467F33C23F\"\r\nLast-Modified: Thu, 08 Aug 2024 18:58:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=5648\r\nExpires: Sat, 10 Aug 2024 22:18:39 GMT\r\nDate: Sat, 10 Aug 2024 20:44:31 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"9ee33ad49fc95cbec52887b67a3f8f92","sha1":"a692164ae79e5d194dac7945b76eb493f261a103","sha256":"f6e3ff7fe8c3e33cc9a5f443e3772734a7026ec834f48a39703f23467f33c23f","sha512":"88064188dfed9871f57970b00729f392ee66bc3adce0dc1bc3ced83d8c6bee3a34bca114f12cccc5405d6fe9a0269d541ae9354bb7dd32b964a3e304dac39f71","ssdeep":"","tlshash":"3ef00543157d7ed2e7b81b062d9ac42f1f28fbb504997e74758551836440bd4ce8654c","first_seen":"2024-08-09T02:22:28Z","last_seen":"2024-08-19T14:07:43.139141Z","times_seen":32385,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-08-10T20:44:32.012059146Z","timestamp":1723322672012,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"CB2873C69274D15B03F8AAA26260D7A2341F2E276F876F444F1FEE5679266653\"\r\nLast-Modified: Thu, 08 Aug 2024 18:57:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=18798\r\nExpires: Sun, 11 Aug 2024 01:57:50 GMT\r\nDate: Sat, 10 Aug 2024 20:44:32 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"41f3021c1502428798a392f3c2ef0fc8","sha1":"c7a61247c753e72345e5c4504056a09889a3916e","sha256":"cb2873c69274d15b03f8aaa26260d7a2341f2e276f876f444f1fee5679266653","sha512":"8d71d699669ff3a221ac28d20b29aaef3d5973e154e3ae8acca093257a36615c3c08ee3a321b7080051654534aca29864cf013481b1245010bc9e9f3d7733f95","ssdeep":"","tlshash":"94f0050519b4799077730b155ef6f5173d21fe2e24583493158804c5e84bf7d06c009c","first_seen":"2024-08-08T21:17:25Z","last_seen":"2024-08-19T14:09:34.891082Z","times_seen":26433,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"hris.saranagroups.com/img/logo","fqdn":"hris.saranagroups.com","domain":"saranagroups.com","tld":"com"},"ip":{"addr":"103.167.112.196","port":443,"asn":139457,"as":"PT Semut Data Indonesia","country":"Indonesia","country_code":"ID"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2024-08-10T20:44:31.970Z","timestamp":1723322671970,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"hris.saranagroups.com","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Wed, 10 Jul 2024 00:13:23 GMT","end":"Tue, 08 Oct 2024 00:13:22 GMT"},"fingerprint":{"sha1":"DD:95:69:8A:96:BA:62:F1:47:85:F3:41:9C:F5:0F:5F:0A:DA:8A:81","sha256":"AA:C7:B7:99:03:F7:E1:66:68:FF:18:32:37:B1:E3:CD:C9:3B:71:20:9F:E5:09:BA:46:47:30:C6:81:F9:F4:52"}}},"request":{"raw":"GET /img/logo HTTP/1.1\r\nHost: hris.saranagroups.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 301 Moved Permanently\r\nDate: Sat, 10 Aug 2024 20:44:32 GMT\r\nServer: Apache\r\nLocation: https://hris.saranagroups.com/img/logo/\r\nContent-Length: 247\r\nKeep-Alive: timeout=5\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=iso-8859-1\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":247,"size_decoded":247,"mime_type":"text/html; charset=ISO-8859-1","magic":"HTML document, ASCII text","md5":"71857f5c23fe20d8bbd3188c64f7d2ee","sha1":"7ef70bf4f0848e61d8a1ab3d2dd6d7b8056edcbd","sha256":"753a42111f169b4ad28723743b02f9235d159730228732b194c8889bac9ed194","sha512":"f82b32657a9062684543fb4f30fa790d231c8d184fd1752177db7b4a29f49f528f76ac725a49accd3a80dd7d790e8cede5cf85a0a98a5d93d777886a10a80d95","ssdeep":"","tlshash":"c7d097fca38220c0b8e33b80b8c220d1646e10f1a68a99e91deb2849d00a17b4cca0c8","first_seen":"2024-08-19T13:55:05.665099Z","last_seen":"2024-08-19T13:55:05.665099Z","times_seen":1,"resource_available":false,"data":null}},"time_used":997,"timings":{"blocked":398,"dns":0,"connect":194,"send":0,"wait":200,"receive":0,"ssl":201},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"hris.saranagroups.com/img/logo/","fqdn":"hris.saranagroups.com","domain":"saranagroups.com","tld":"com"},"ip":{"addr":"103.167.112.196","port":443,"asn":139457,"as":"PT Semut Data Indonesia","country":"Indonesia","country_code":"ID"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2024-08-10T20:44:32.575Z","timestamp":1723322672575,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"hris.saranagroups.com","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Wed, 10 Jul 2024 00:13:23 GMT","end":"Tue, 08 Oct 2024 00:13:22 GMT"},"fingerprint":{"sha1":"DD:95:69:8A:96:BA:62:F1:47:85:F3:41:9C:F5:0F:5F:0A:DA:8A:81","sha256":"AA:C7:B7:99:03:F7:E1:66:68:FF:18:32:37:B1:E3:CD:C9:3B:71:20:9F:E5:09:BA:46:47:30:C6:81:F9:F4:52"}}},"request":{"raw":"GET /img/logo/ HTTP/1.1\r\nHost: hris.saranagroups.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 10 Aug 2024 20:44:32 GMT\r\nServer: Apache\r\nContent-Length: 2373\r\nKeep-Alive: timeout=5\r\nConnection: Keep-Alive\r\nContent-Type: text/html;charset=ISO-8859-1\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2373,"size_decoded":2373,"mime_type":"text/html; charset=ISO-8859-1","magic":"HTML document, ASCII text","md5":"cc3bbcede20276c0d3c237116d2c8998","sha1":"b168a0750102a0f179250b74649fa0a4e5c196bf","sha256":"33f84af30efc3dce015347e1fa4e072e80397f322c65d471df75684b000e488f","sha512":"ef8ab21194e838671505031eaf906217e93e3c8c35c12c998a0505f9e9a251dbfe3a1dfe2582c0e9883de905004675f75860fc76ddf2e92dce603fe02ae20b51","ssdeep":"","tlshash":"d94183589ae192b758c1155be244bddacbf78dfc83b118207d0facd7e7889bc870a052","first_seen":"2024-08-19T13:55:05.665776Z","last_seen":"2024-08-19T13:55:05.665776Z","times_seen":1,"resource_available":false,"data":null}},"time_used":199,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":198,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Audit - Open directory","verdict":"none","severity":"audit","comment":"","tags":["opendir"],"meta":null}]}},{"url":{"schema":"https","addr":"hris.saranagroups.com/favicon.ico","fqdn":"hris.saranagroups.com","domain":"saranagroups.com","tld":"com"},"ip":{"addr":"103.167.112.196","port":443,"asn":139457,"as":"PT Semut Data Indonesia","country":"Indonesia","country_code":"ID"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://hris.saranagroups.com/img/logo/","date":"2024-08-10T20:44:32.969Z","timestamp":1723322672969,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"hris.saranagroups.com","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Wed, 10 Jul 2024 00:13:23 GMT","end":"Tue, 08 Oct 2024 00:13:22 GMT"},"fingerprint":{"sha1":"DD:95:69:8A:96:BA:62:F1:47:85:F3:41:9C:F5:0F:5F:0A:DA:8A:81","sha256":"AA:C7:B7:99:03:F7:E1:66:68:FF:18:32:37:B1:E3:CD:C9:3B:71:20:9F:E5:09:BA:46:47:30:C6:81:F9:F4:52"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: hris.saranagroups.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://hris.saranagroups.com/img/logo/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nDate: Sat, 10 Aug 2024 20:44:32 GMT\r\nServer: Apache\r\nContent-Length: 315\r\nKeep-Alive: timeout=5\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=iso-8859-1\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":null,"data":{"size":315,"size_decoded":315,"mime_type":"text/html; charset=iso-8859-1","magic":"HTML document, ASCII text","md5":"a34ac19f4afae63adc5d2f7bc970c07f","sha1":"a82190fc530c265aa40a045c21770d967f4767b8","sha256":"d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3","sha512":"42e53d96e5961e95b7a984d9c9778a1d3bd8ee0c87b8b3b515fa31f67c2d073c8565afc2f4b962c43668c4efa1e478da9bb0ecffa79479c7e880731bc4c55765","ssdeep":"","tlshash":"b0e0e75f41473347402252907dc110d1d505236b797161fd3d85b4ab501dc3dc99f7dc","first_seen":"2023-03-07T01:02:33Z","last_seen":"2026-04-14T21:46:57.617332Z","times_seen":144150,"resource_available":true,"data":null}},"time_used":195,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":195,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-08-10T20:44:33.60873929Z","timestamp":1723322673608,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"EB81057E97FC772C3B55FF2D175797A88DB6035F09ED472DCF8604E3C9434D1B\"\r\nLast-Modified: Thu, 08 Aug 2024 18:58:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=12037\r\nExpires: Sun, 11 Aug 2024 00:05:10 GMT\r\nDate: Sat, 10 Aug 2024 20:44:33 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"cb72b4c8c0043447fb191d29a2987907","sha1":"b21349d4cefa64181af49f91f868ffffb136a54a","sha256":"eb81057e97fc772c3b55ff2d175797a88db6035f09ed472dcf8604e3c9434d1b","sha512":"fedf1ca548c38c303cf41daf3686e44c203fe5aff3ba2b08b7ea6cb3282e2f6dd557c14e8e9ea093f05c92a2f181038e5887e0d841bb67376cdbf8692442d9cb","ssdeep":"","tlshash":"fdf00e8022fcbed6b7302412ade2fb5e1a2aec78350c35f534cd42aa2811bbc199108c","first_seen":"2024-08-08T23:58:07Z","last_seen":"2024-08-19T14:08:36.466062Z","times_seen":28705,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-08-10T20:44:33.610649107Z","timestamp":1723322673610,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"EB81057E97FC772C3B55FF2D175797A88DB6035F09ED472DCF8604E3C9434D1B\"\r\nLast-Modified: Thu, 08 Aug 2024 18:58:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=12037\r\nExpires: Sun, 11 Aug 2024 00:05:10 GMT\r\nDate: Sat, 10 Aug 2024 20:44:33 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"cb72b4c8c0043447fb191d29a2987907","sha1":"b21349d4cefa64181af49f91f868ffffb136a54a","sha256":"eb81057e97fc772c3b55ff2d175797a88db6035f09ed472dcf8604e3c9434d1b","sha512":"fedf1ca548c38c303cf41daf3686e44c203fe5aff3ba2b08b7ea6cb3282e2f6dd557c14e8e9ea093f05c92a2f181038e5887e0d841bb67376cdbf8692442d9cb","ssdeep":"","tlshash":"fdf00e8022fcbed6b7302412ade2fb5e1a2aec78350c35f534cd42aa2811bbc199108c","first_seen":"2024-08-08T23:58:07Z","last_seen":"2024-08-19T14:08:36.466062Z","times_seen":28705,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}